Search for packages
| purl | pkg:alpm/archlinux/thunderbird@78.14.0-1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-2ybw-4f7c-aaan
Aliases: CVE-2021-38495 |
Mozilla developers reported memory safety bugs present in Thunderbird 78.13.0. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Thunderbird < 91.1 and Firefox ESR < 91.1. |
Affected by 0 other vulnerabilities. |
|
VCID-n1ts-k7a5-aaac
Aliases: CVE-2021-29987 |
After requesting multiple permissions, and closing the first permission panel, subsequent permission panels will be displayed in a different position but still record a click in the default location, making it possible to trick a user into accepting a permission they did not want to. *This bug only affects Firefox on Linux. Other operating systems are unaffected.*. This vulnerability affects Firefox < 91 and Thunderbird < 91. |
Affected by 0 other vulnerabilities. |
|
VCID-rnhs-39ge-aaaj
Aliases: CVE-2021-29991 |
Firefox incorrectly accepted a newline in a HTTP/3 header, interpretting it as two separate headers. This allowed for a header splitting attack against servers using HTTP/3. This vulnerability affects Firefox < 91.0.1 and Thunderbird < 91.0.1. |
Affected by 0 other vulnerabilities. |
|
VCID-wy66-hxwv-aaap
Aliases: CVE-2021-29982 |
Due to incorrect JIT optimization, we incorrectly interpreted data from the wrong type of object, resulting in the potential leak of a single bit of memory. This vulnerability affects Firefox < 91 and Thunderbird < 91. |
Affected by 0 other vulnerabilities. |
|
VCID-ygcc-tsv1-aaap
Aliases: CVE-2021-29981 |
An issue present in lowering/register allocation could have led to obscure but deterministic register confusion failures in JITted code that would lead to a potentially exploitable crash. This vulnerability affects Firefox < 91 and Thunderbird < 91. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-95rd-be75-aaae | When delegating navigations to the operating system, Firefox would accept the `mk` scheme which might allow attackers to launch pages and execute scripts in Internet Explorer in unprivileged mode. *This bug only affects Firefox for Windows. Other operating systems are unaffected.*. This vulnerability affects Firefox < 92, Thunderbird < 91.1, Thunderbird < 78.14, Firefox ESR < 78.14, and Firefox ESR < 91.1. |
CVE-2021-38492
|
| VCID-wv46-3gkh-aaam | Mozilla developers reported memory safety bugs present in Firefox 91 and Firefox ESR 78.13. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox ESR < 78.14, Thunderbird < 78.14, and Firefox < 92. |
CVE-2021-38493
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-03-28T07:46:29.391973+00:00 | Arch Linux Importer | Fixing | VCID-95rd-be75-aaae | https://security.archlinux.org/AVG-2353 | 36.0.0 |
| 2025-03-28T07:45:29.151182+00:00 | Arch Linux Importer | Affected by | VCID-ygcc-tsv1-aaap | https://security.archlinux.org/AVG-2291 | 36.0.0 |
| 2025-03-28T07:45:29.132522+00:00 | Arch Linux Importer | Affected by | VCID-wy66-hxwv-aaap | https://security.archlinux.org/AVG-2291 | 36.0.0 |
| 2025-03-28T07:45:29.113759+00:00 | Arch Linux Importer | Affected by | VCID-n1ts-k7a5-aaac | https://security.archlinux.org/AVG-2291 | 36.0.0 |
| 2025-03-28T07:45:29.094940+00:00 | Arch Linux Importer | Affected by | VCID-rnhs-39ge-aaaj | https://security.archlinux.org/AVG-2291 | 36.0.0 |
| 2025-03-28T07:45:29.076129+00:00 | Arch Linux Importer | Affected by | VCID-2ybw-4f7c-aaan | https://security.archlinux.org/AVG-2291 | 36.0.0 |
| 2025-03-28T07:44:05.230312+00:00 | Arch Linux Importer | Fixing | VCID-wv46-3gkh-aaam | https://security.archlinux.org/AVG-2344 | 36.0.0 |
| 2024-09-18T02:01:46.510925+00:00 | Arch Linux Importer | Fixing | VCID-95rd-be75-aaae | https://security.archlinux.org/AVG-2353 | 34.0.1 |
| 2024-09-18T02:00:25.424933+00:00 | Arch Linux Importer | Affected by | VCID-ygcc-tsv1-aaap | https://security.archlinux.org/AVG-2291 | 34.0.1 |
| 2024-09-18T02:00:25.404872+00:00 | Arch Linux Importer | Affected by | VCID-wy66-hxwv-aaap | https://security.archlinux.org/AVG-2291 | 34.0.1 |
| 2024-09-18T02:00:25.382735+00:00 | Arch Linux Importer | Affected by | VCID-n1ts-k7a5-aaac | https://security.archlinux.org/AVG-2291 | 34.0.1 |
| 2024-09-18T02:00:25.361030+00:00 | Arch Linux Importer | Affected by | VCID-rnhs-39ge-aaaj | https://security.archlinux.org/AVG-2291 | 34.0.1 |
| 2024-09-18T02:00:25.336850+00:00 | Arch Linux Importer | Affected by | VCID-2ybw-4f7c-aaan | https://security.archlinux.org/AVG-2291 | 34.0.1 |
| 2024-09-18T01:59:12.971637+00:00 | Arch Linux Importer | Fixing | VCID-wv46-3gkh-aaam | https://security.archlinux.org/AVG-2344 | 34.0.1 |
| 2024-01-03T22:27:51.873704+00:00 | Arch Linux Importer | Fixing | VCID-95rd-be75-aaae | https://security.archlinux.org/AVG-2353 | 34.0.0rc1 |
| 2024-01-03T22:26:40.848776+00:00 | Arch Linux Importer | Affected by | VCID-ygcc-tsv1-aaap | https://security.archlinux.org/AVG-2291 | 34.0.0rc1 |
| 2024-01-03T22:26:40.825207+00:00 | Arch Linux Importer | Affected by | VCID-wy66-hxwv-aaap | https://security.archlinux.org/AVG-2291 | 34.0.0rc1 |
| 2024-01-03T22:26:40.795919+00:00 | Arch Linux Importer | Affected by | VCID-n1ts-k7a5-aaac | https://security.archlinux.org/AVG-2291 | 34.0.0rc1 |
| 2024-01-03T22:26:40.773998+00:00 | Arch Linux Importer | Affected by | VCID-rnhs-39ge-aaaj | https://security.archlinux.org/AVG-2291 | 34.0.0rc1 |
| 2024-01-03T22:26:40.752208+00:00 | Arch Linux Importer | Affected by | VCID-2ybw-4f7c-aaan | https://security.archlinux.org/AVG-2291 | 34.0.0rc1 |
| 2024-01-03T22:25:30.607296+00:00 | Arch Linux Importer | Fixing | VCID-wv46-3gkh-aaam | https://security.archlinux.org/AVG-2344 | 34.0.0rc1 |